Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/dHhXnMem0NbzppQhfHCILQ1sg3k.roa
File: dHhXnMem0NbzppQhfHCILQ1sg3k.roa (raw, json)
Hash identifier: z1XneC4348lTdqEU/z9EpBg5VytN8I4P7DaKJjoEbVg=
Subject key identifier: 74:78:57:9C:C7:A6:D0:D6:F3:A6:94:21:7C:70:88:2D:0D:6C:83:79
Certificate issuer: /CN=62beaa57c67aeb5bafd99793ab4846850a796c28
Certificate serial: 0193D138D375CF04579A18FB0914CA6E3FFA
Authority key identifier: 62:BE:AA:57:C6:7A:EB:5B:AF:D9:97:93:AB:48:46:85:0A:79:6C:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/dHhXnMem0NbzppQhfHCILQ1sg3k.roa
Signing time: Mon 16 Dec 2024 20:46:22 +0000
ROA not before: Mon 16 Dec 2024 20:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214515
IP address blocks: 91.239.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d1:38:d3:75:cf:04:57:9a:18:fb:09:14:ca:6e:3f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62beaa57c67aeb5bafd99793ab4846850a796c28
Validity
Not Before: Dec 16 20:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7478579cc7a6d0d6f3a694217c70882d0d6c8379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:91:0a:a8:af:c8:f5:92:36:91:21:04:93:23:
22:b4:ce:d6:58:31:8a:39:d6:34:eb:9b:fc:be:9b:
02:9b:98:82:63:80:c6:a1:5d:b3:55:40:9f:b2:0c:
33:9f:34:21:0b:f1:c6:6d:87:ac:c3:0f:3b:58:7e:
9b:8f:a5:88:f2:90:68:f1:c5:d8:e6:9c:04:3f:66:
a2:b7:5d:1d:0c:70:b3:ed:b5:b0:88:ba:4c:60:b1:
11:d8:55:1e:a9:50:76:47:e0:f9:86:85:b8:b2:48:
02:57:93:e0:ea:00:28:93:20:ec:80:12:69:1b:ca:
c2:01:85:23:dd:cb:21:68:91:7e:65:1c:a3:6b:a6:
5c:22:75:21:76:e4:bc:c4:a0:0f:6b:85:b0:04:74:
f7:da:cc:ac:ea:d8:e3:19:69:f3:6f:15:07:d6:d7:
60:17:d0:6f:5a:0d:1f:64:a1:40:64:3e:63:01:f2:
70:7f:fa:cd:2e:d3:45:95:99:7e:f4:19:75:45:d1:
7f:34:e8:ab:cd:66:39:0c:1c:2b:17:b0:8d:a5:2e:
40:b3:78:4e:51:41:b2:5f:5b:52:af:4f:35:fe:4f:
79:ba:e3:46:97:27:f3:89:86:6a:c6:32:28:00:1f:
8b:ec:18:13:d6:6f:36:9b:04:91:10:bd:5b:c2:bf:
e1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:78:57:9C:C7:A6:D0:D6:F3:A6:94:21:7C:70:88:2D:0D:6C:83:79
X509v3 Authority Key Identifier:
keyid:62:BE:AA:57:C6:7A:EB:5B:AF:D9:97:93:AB:48:46:85:0A:79:6C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/dHhXnMem0NbzppQhfHCILQ1sg3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.189.0/24
Signature Algorithm: sha256WithRSAEncryption
07:f5:0e:91:d0:66:43:72:73:62:2d:02:75:42:8d:9b:2e:fa:
4f:d1:de:65:4b:b9:75:b7:8d:19:4b:d5:20:ce:13:47:2c:7f:
e4:ee:e9:22:be:65:a6:3d:34:02:6e:39:d6:7a:b2:a9:00:fd:
0f:3c:9c:14:ea:ff:a6:d3:e6:d0:a3:40:44:f4:4b:2e:fc:03:
07:51:87:85:23:87:32:a0:0c:e4:d3:e1:e0:85:bb:13:48:23:
44:aa:f8:96:cf:79:ba:83:fc:f3:86:4b:07:bb:c4:0d:4b:e4:
c0:25:0c:9e:c3:a5:62:60:30:fc:8d:32:af:e6:ce:f0:a2:9f:
26:24:1a:96:09:1e:8e:3f:4c:55:e7:3c:c8:3a:56:28:1d:1e:
bb:08:c2:36:d2:0b:6b:3b:84:3e:ab:ff:6d:cd:d9:08:5e:0b:
76:92:e5:3e:4f:be:d4:bd:01:ca:de:2a:0e:9e:f3:a8:6b:cc:
b6:11:d8:49:bf:01:62:c0:07:59:4f:a9:88:c2:6b:96:5f:b2:
7d:81:9f:c6:56:18:d1:3e:43:b2:08:2b:6d:32:89:d2:c6:46:
1b:1f:8b:e8:9d:d2:2b:44:c1:fc:cb:f3:2a:50:02:81:2e:cf:
f3:2b:a5:0c:cf:63:61:d8:d0:4f:2b:83:c1:65:ee:ea:47:f5:
48:77:ec:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:14 2024 by rpki-client on console.sobornost.net